$ rpki-client -vvf rpki.apnic.net/member_repository/A919C7A9/AFA0E2A481E311EE838DA50AC4F9AE02/99ZBYbOgStTlnAFz47gHWSgtQ8E.mft File: 99ZBYbOgStTlnAFz47gHWSgtQ8E.mft (raw, json) Hash identifier: CaQLXPeybs62et4lJVa4XHbAOr5G9s+iv29DVkQge/c= Subject key identifier: FB:F0:58:70:3D:5D:F4:17:F2:B1:A2:29:15:17:60:CC:38:A2:2C:17 Authority key identifier: F7:D6:41:61:B3:A0:4A:D4:E5:9C:01:73:E3:B8:07:59:28:2D:43:C1 Certificate issuer: /CN=A919C7A9/serialNumber=F7D64161B3A04AD4E59C0173E3B80759282D43C1 Certificate serial: C7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/99ZBYbOgStTlnAFz47gHWSgtQ8E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919C7A9/AFA0E2A481E311EE838DA50AC4F9AE02/99ZBYbOgStTlnAFz47gHWSgtQ8E.mft Manifest number: C3 Signing time: Thu 21 Nov 2024 04:01:36 +0000 Manifest this update: Thu 21 Nov 2024 04:01:35 +0000 Manifest next update: Thu 28 Nov 2024 04:01:35 +0000 Files and hashes: 1: 99ZBYbOgStTlnAFz47gHWSgtQ8E.crl (hash: yI3DDfR2if+O4j5UsqXRm2H7FcXh0n3erSzzrFWcfFs=) 2: 1440775266A811EF8F855559C4F9AE02.roa (hash: jSyDwepkHT9w8z/ARNJxwkoBGmrm5hexZnsRU9N3B8w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919C7A9/AFA0E2A481E311EE838DA50AC4F9AE02/99ZBYbOgStTlnAFz47gHWSgtQ8E.crl rsync://rpki.apnic.net/member_repository/A919C7A9/AFA0E2A481E311EE838DA50AC4F9AE02/99ZBYbOgStTlnAFz47gHWSgtQ8E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/99ZBYbOgStTlnAFz47gHWSgtQ8E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 04:01:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 199 (0xc7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919C7A9/serialNumber=F7D64161B3A04AD4E59C0173E3B80759282D43C1 Validity Not Before: Nov 21 04:01:35 2024 GMT Not After : Nov 28 04:01:35 2024 GMT Subject: CN=673eb0a0-f188 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:e0:de:fe:24:b7:52:a2:be:5c:11:21:b6:f9: 04:a5:cc:09:0b:36:bf:b4:db:56:0a:4b:20:8a:33: b7:c2:4d:67:4f:fa:f0:8d:7b:e0:be:f2:75:cc:6b: 1b:98:a0:9a:09:d2:ea:e8:23:da:74:ce:46:67:d1: 5c:88:7a:f4:16:7b:da:3b:49:26:b1:b2:bc:c5:e2: 11:7e:23:2f:40:8f:d8:50:f0:d5:e4:c2:5a:d4:4d: e1:75:8d:ae:4c:e0:36:20:08:60:8b:9c:ae:ea:10: 47:78:7f:5e:2d:e6:68:4c:f6:9f:7a:78:27:d3:10: 23:87:69:1d:94:d8:c3:b5:66:68:3a:3a:66:69:8e: 5e:56:c0:39:d2:10:77:0b:4b:5c:8c:34:ee:fd:f2: 96:0e:5f:23:89:79:86:88:7f:d0:e2:58:ea:8b:cd: 4f:bb:ba:8c:34:d5:f5:e8:f5:41:db:bb:0a:ed:ff: 0d:8c:3d:f6:ae:1f:ac:97:47:e6:5b:e3:07:69:fe: 29:8c:b9:a5:22:46:60:90:f1:78:1f:10:77:57:ef: 98:30:a1:ce:08:6a:f5:ab:90:f0:a6:18:79:1a:29: 18:a6:ad:1a:34:f4:b4:c4:5a:36:d1:a1:9e:d1:6a: 18:7c:44:ad:6f:c9:a7:56:b6:23:ab:dd:60:b2:1c: d9:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:F0:58:70:3D:5D:F4:17:F2:B1:A2:29:15:17:60:CC:38:A2:2C:17 X509v3 Authority Key Identifier: keyid:F7:D6:41:61:B3:A0:4A:D4:E5:9C:01:73:E3:B8:07:59:28:2D:43:C1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919C7A9/AFA0E2A481E311EE838DA50AC4F9AE02/99ZBYbOgStTlnAFz47gHWSgtQ8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/99ZBYbOgStTlnAFz47gHWSgtQ8E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919C7A9/AFA0E2A481E311EE838DA50AC4F9AE02/99ZBYbOgStTlnAFz47gHWSgtQ8E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 74:f7:27:e3:e5:cf:f4:87:71:a0:3f:52:33:50:d7:21:89:be: fb:05:e8:a1:06:04:9e:d4:0d:57:21:45:e9:4e:75:3c:b8:ae: ca:e5:66:0a:f8:ec:b6:d4:92:d5:79:a9:53:60:8c:5c:b4:87: 3b:96:72:f4:1b:ec:88:62:a1:59:e5:5c:e8:f3:b3:70:55:02: 7f:f2:35:04:99:47:6e:d2:78:af:7b:65:9a:91:5e:ec:46:4e: 04:33:70:18:a2:f1:a7:7d:35:61:5a:24:c0:0f:27:d8:52:f8: 14:f6:ba:59:b9:f8:dd:3a:84:97:77:1a:7c:d4:a7:86:e8:b7: 38:81:99:1d:e8:6d:0d:c5:c5:dd:89:32:07:ee:d1:94:14:d9: ee:9b:b7:a7:b9:8a:eb:ee:43:9e:d3:28:cf:a3:8e:ea:c6:cb: 13:c9:eb:aa:47:ee:c8:9d:c0:0c:af:97:c0:7f:03:65:fb:7d: 11:ef:82:1e:06:a5:86:0e:f7:97:ab:42:21:0f:8a:df:99:32: 75:90:1b:ba:53:b6:d7:b5:7e:e8:1d:50:58:f2:07:57:80:93: 11:5b:65:4d:fc:e7:9a:f7:f4:80:d7:34:36:3b:49:9e:4d:85: 8b:d9:32:bf:3a:c8:07:03:f0:70:83:7d:ee:77:20:0c:90:69: 3f:3f:03:f3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUM3QTkxMTAvBgNVBAUTKEY3RDY0MTYxQjNBMDRBRDRFNTlDMDE3M0UzQjgwNzU5 MjgyRDQzQzEwHhcNMjQxMTIxMDQwMTM1WhcNMjQxMTI4MDQwMTM1WjAYMRYwFAYD VQQDEw02NzNlYjBhMC1mMTg4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqeDe/iS3UqK+XBEhtvkEpcwJCza/tNtWCksgijO3wk1nT/rwjXvgvvJ1zGsb mKCaCdLq6CPadM5GZ9FciHr0FnvaO0kmsbK8xeIRfiMvQI/YUPDV5MJa1E3hdY2u TOA2IAhgi5yu6hBHeH9eLeZoTPafengn0xAjh2kdlNjDtWZoOjpmaY5eVsA50hB3 C0tcjDTu/fKWDl8jiXmGiH/Q4ljqi81Pu7qMNNX16PVB27sK7f8NjD32rh+sl0fm W+MHaf4pjLmlIkZgkPF4HxB3V++YMKHOCGr1q5Dwphh5GikYpq0aNPS0xFo20aGe 0WoYfEStb8mnVrYjq91gshzZIwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPvwWHA9 XfQX8rGiKRUXYMw4oiwXMB8GA1UdIwQYMBaAFPfWQWGzoErU5ZwBc+O4B1koLUPB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QzdBOS9BRkEwRTJBNDgx RTMxMUVFODM4REE1MEFDNEY5QUUwMi85OVpCWWJPZ1N0VGxuQUZ6NDdnSFdTZ3RR OEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzk5WkJZYk9nU3RUbG5BRno0N2dIV1NndFE4RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QzdBOS9BRkEwRTJBNDgxRTMxMUVFODM4REE1MEFDNEY5QUUwMi85OVpCWWJPZ1N0 VGxuQUZ6NDdnSFdTZ3RROEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB09yfj5c/0h3GgP1IzUNchib77BeihBgSe1A1XIUXpTnU8uK7K5WYK +Oy21JLVealTYIxctIc7lnL0G+yIYqFZ5Vzo87NwVQJ/8jUEmUdu0nive2WakV7s Rk4EM3AYovGnfTVhWiTADyfYUvgU9rpZufjdOoSXdxp81KeG6Lc4gZkd6G0NxcXd iTIH7tGUFNnum7enuYrr7kOe0yjPo47qxssTyeuqR+7IncAMr5fAfwNl+30R74Ie BqWGDveXq0IhD4rfmTJ1kBu6U7bXtX7oHVBY8gdXgJMRW2VN/Oea9/SA1zQ2O0me TYWL2TK/OsgHA/Bwg33udyAMkGk/PwPz -----END CERTIFICATE-----Generated at Thu Nov 21 05:06:02 2024 by rpki-client on console-fra.rpki-client.org